Last updated: {date}
The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data is any data that can be used to personally identify you. Detailed information on the subject of data protection can be found in our privacy policy listed below this text.
Data processing on this website is carried out by the website operator. You can find their contact details in the section 'Notice on the Responsible Party' in this privacy policy.
Your data is collected, on the one hand, by you providing it to us. This may be data that you enter during registration, in your profile, or when using the messenger.
Other data is collected automatically or with your consent when you visit the website by our IT systems. This is primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter this website.
Part of the data is collected to ensure error-free provision of the website. Other data may be used to analyze your user behavior. Primarily, we use your data to provide you with the functions of BYKERS.APP: route planning, community features, messenger, garage management, and events.
You have the right to receive information about the origin, recipient, and purpose of your stored personal data free of charge at any time. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you can revoke this consent at any time for the future. You also have the right to request the restriction of the processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
We host our website on Google Cloud Run, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Cloud Run is a serverless container platform that delivers our website quickly and reliably.
Data Processing When you visit our website, information is automatically stored in server log files, which your browser automatically transmits. Data processing takes place on Google servers in the EU (region europe-west1, Belgium). Google is certified under the EU-US Data Privacy Framework.
Legal Basis Art. 6 para. 1 lit. f GDPR (legitimate interest in the reliable presentation of our website).
More Information Google Cloud Privacy Policy
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
The responsible party for data processing on this website is:
justcrew UG (haftungsbeschränkt) Managing Director: Marcel Rottler Leopoldstr. 28 79359 Riegel, Germany Email: info@bykers.app
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (e.g., names, email addresses, etc.).
Unless a more specific storage period has been mentioned within this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, deletion will take place after these reasons cease to apply.
Many data processing operations are only possible with your express consent. You can revoke consent already given at any time. The legality of the data processing carried out until the revocation remains unaffected by the revocation.
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipients, and the purpose of data processing at any time and, if applicable, a right to correction or deletion of this data. You can contact us at any time regarding this and other questions on the subject of personal data.
The competent supervisory authority for data protection matters is: Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg Lautenschlagerstraße 20 70173 Stuttgart, Germany Phone: +49 711 6155 41-0 Email: poststelle@lfdi.bwl.de Website: https://www.baden-wuerttemberg.datenschutz.de
We are not legally required to appoint a data protection officer. For data protection inquiries, please contact: info@bykers.app
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as inquiries you send to us as the site operator. You can recognize an encrypted connection by the fact that the address bar of the browser changes from "http://" to "https://" and by the lock icon in your browser bar.
IF DATA PROCESSING IS BASED ON ART. 6 PARA. 1 LIT. E OR F GDPR, YOU HAVE THE RIGHT TO OBJECT TO THE PROCESSING OF YOUR PERSONAL DATA AT ANY TIME FOR REASONS ARISING FROM YOUR PARTICULAR SITUATION. THE RESPECTIVE LEGAL BASIS ON WHICH PROCESSING IS BASED CAN BE FOUND IN THIS PRIVACY POLICY. IF YOU OBJECT, WE WILL NO LONGER PROCESS YOUR AFFECTED PERSONAL DATA UNLESS WE CAN DEMONSTRATE COMPELLING LEGITIMATE GROUNDS FOR THE PROCESSING WHICH OVERRIDE YOUR INTERESTS, RIGHTS AND FREEDOMS, OR THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21 PARA. 1 GDPR). DIRECT YOUR OBJECTION TO: info@bykers.app
Our websites use so-called 'cookies'. Cookies are small data packets and do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted after your visit ends. Permanent cookies remain stored on your device until you delete them yourself or automatic deletion by your web browser occurs.
Necessary Cookies We only use technically necessary cookies that are required for the operation of the website. These cookies are strictly necessary to provide you with the services offered on our website. These include authentication cookies, language settings, and security cookies.
Legal Basis Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest) or Art. 6 para. 1 lit. b GDPR (contract fulfillment), as the cookies are necessary for the provision of our services.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
This data is not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of their website – for this purpose, the server log files must be collected.
You can register on this website to use additional functions on the site. We only use the data entered for the purpose of using the respective offer or service for which you have registered.
During registration, we collect the following data:
Age Verification BYKERS.APP is a platform for adults aged 18 and over. We collect the date of birth for age verification. Minors are not permitted to use the platform.
Legal Basis Data processing is based on your consent (Art. 6 para. 1 lit. a GDPR) and for contract fulfillment (Art. 6 para. 1 lit. b GDPR). You can revoke consent given at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.
We use the Firebase platform from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Firebase is a development platform for web and mobile applications.
We use the following Firebase services:
Data Processing Data processing takes place on Google servers in the EU (region europe-west1). Google is certified under the EU-US Data Privacy Framework.
Legal Basis Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment) and Art. 6 para. 1 lit. f GDPR (legitimate interest in reliable infrastructure).
More Information Firebase Privacy
You can sign in to BYKERS.APP with your Google account. Your name, email address, and profile picture are transmitted from Google. We do not have access to your Google password.
Legal Basis Legal basis: Art. 6 para. 1 lit. a GDPR (consent) – you actively decide to sign in with Google.
For displaying maps and calculating routes, we use Mapbox, a service of Mapbox Inc., 740 15th Street NW, 5th Floor, Washington, DC 20005, USA.
Data Processing When using maps, your IP address and location data (if you share them) are transmitted to Mapbox. Mapbox is certified under the EU-US Data Privacy Framework.
Legal Basis Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment) and Art. 6 para. 1 lit. f GDPR (legitimate interest in attractive map display).
More Information Mapbox Privacy
For our AI-powered route planner, we use Google Gemini, an AI service from Google. When you describe a route using natural language, your input is sent to Google Gemini.
Data Processing Google Gemini processes your text input to generate suitable route suggestions. We do not transmit any personal data to Gemini, only the route description.
Legal Basis Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment) – the AI route planner is a core function of the platform that you actively use. No personal data is transmitted to Gemini.
More Information Google Privacy Policy
We use map data from OpenStreetMap (OSM), a project of the OpenStreetMap Foundation, 132 Maney Hill Road, Sutton Coldfield, West Midlands, B72 1JU, UK.
Data Processing OSM provides free geographic data under an open license. No personal data is transmitted to OSM during use.
License The map data is available under the Open Database License (ODbL).
For weather forecasts, we use OpenWeather, a service of OpenWeather Ltd., 60 Gracechurch Street, London, EC3V 0HR, UK.
Data Processing When requesting weather data, coordinates (latitude and longitude) are transmitted to OpenWeather. No personal data is transmitted.
Legal Basis Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in useful weather information for tours).
We use Upstash Redis for data caching. Upstash Inc. is a US company with servers in the EU.
Data Processing The cache temporarily stores technical data to improve application performance. No personal data is permanently stored in the cache.
Legal Basis Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in fast website performance).
For hotel and accommodation suggestions in the route planner, we use Stay22, a service of Stay22 Inc., Montréal, Canada.
Data Processing When accommodations are displayed, the coordinates (latitude and longitude) of the respective overnight location and the travel dates are transmitted to Stay22 in order to load matching offers. Stay22 is an affiliate partner; for bookings made through the displayed links, we may receive a commission. No directly identifying personal data (e.g. name, email) is transmitted.
Legal Basis Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment – accommodation suggestions are part of route planning) and Art. 6 para. 1 lit. f GDPR (legitimate interest in useful travel information).
To moderate content, we use OpenAI's moderation API (OpenAI, L.L.C., USA). Publicly visible content (e.g. posts, profiles, clubs, events, marketplace listings) as well as messages reported by users are automatically checked for illegal or impermissible content.
Data Processing In doing so, the text or image content to be checked is transmitted to OpenAI. Private one-to-one direct messages are not checked proactively, but only after a report by users. The transfer to the USA is based on appropriate safeguards pursuant to Art. 46 GDPR (e.g. EU Standard Contractual Clauses).
Legal Basis Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in a safe, legally compliant platform and protecting users from illegal content) and Art. 6 para. 1 lit. c GDPR (compliance with legal obligations, including under the Digital Services Act).
We participate in the affiliate program of AWIN AG, Eichhornstraße 3, 10785 Berlin, Germany. Products from our partner merchants are displayed in the Marketplace section.
Data Processing When you click on an affiliate link, a cookie is set that can assign the click to a commission. AWIN processes your IP address and technical device data.
Legal Basis Legal basis: Art. 6 para. 1 lit. a GDPR (consent). AWIN cookies are only set after your express consent via our cookie banner.
Objection You can revoke your consent at any time by selecting "Necessary cookies only" in the cookie settings or by deleting cookies in your browser.
More Information More information can be found in AWIN's privacy policy:
We participate in the affiliate program of Webgains Ltd, 8 Cross Street, London EC1N 8XA, United Kingdom. Products from partner retailers such as POLO Motorrad, motoin, Motointegrator and others are displayed in the Marketplace section.
Data Processing When you click on an affiliate link, a cookie is set that can assign the click to a commission. Webgains processes your IP address and technical device data.
Legal Basis Legal basis: Art. 6 para. 1 lit. a GDPR (consent). Webgains cookies are only set after your express consent via our cookie banner.
Objection You can revoke your consent at any time by selecting "Necessary cookies only" in the cookie settings or by deleting cookies in your browser.
More information can be found in Webgains' privacy policy: https://www.webgains.com/public/en/privacy-policy/
Links to products in the Marketplace are marked as "Ad". For purchases made through these links, we receive a commission from the provider. The purchase price does not change for you.
With your consent, we send you push notifications to your device. Notifications inform you about new messages, event invitations, tour updates, and other relevant activities.
During registration, we collect the following data: For push notifications, we store a device-specific Web Push subscription according to the W3C Web Push standard (VAPID): the endpoint of your browser's push service and cryptographic keys for encrypted delivery. This subscription does not contain any directly identifying personal content and is used solely to send notifications.
Legal Basis Legal basis: Art. 6 para. 1 lit. a GDPR (consent).
Revocation You can revoke your consent at any time by disabling push notifications in the app settings or in your device settings.
BYKERS.APP contains an integrated messenger for communication between users. Messages are encrypted in transit (TLS) and stored on our servers (Firebase Firestore) in order to be exchanged between participants. End-to-end encryption is not performed.
During registration, we collect the following data: The following data is processed in the messenger: message content (text, images, voice messages), timestamps, sender and recipient IDs.
Storage Messages are stored in Firebase Firestore and, through our access rules, are accessible to the participants of the conversation as well as to the provider (e.g. for delivery or moderation of reported content). Voice messages are stored in Firebase Storage (encryption at rest).
Deletion You can delete individual messages or entire conversations. Deleted messages are completely removed from our systems within 30 days.
Legal Basis Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment) – the messenger is a core function of the platform.
BYKERS.APP allows users to create contact ads to find riding buddies, travel partners, social meetups, workshop help, or club members.
During registration, we collect the following data: Ad type, title, description, region, country, optional images, experience level, riding style, linked route/bike/club, contact preference, creation date, expiration date.
Storage Contact ads are stored in Firebase Firestore. Active ads expire automatically after the chosen validity period (7/14/30 days). Deleted ads are fully removed after 30 days (soft-delete with GDPR-compliant retention period).
Deletion You can delete your contact ads at any time. When you delete your account, all contact ads are automatically deleted. The full data export (Art. 20 GDPR) includes your contact ads.
Legal Basis Legal basis: Art. 6 para. 1 lit. b GDPR (contract fulfillment) – contact ads are a platform feature that users can use voluntarily.
Our website may contain embedded YouTube videos. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube in extended data protection mode. According to YouTube, no information about visitors is stored before they view the video.
Legal Basis Legal basis: Art. 6 para. 1 lit. f GDPR (legitimate interest in appealing presentation).
Under the GDPR, you have the following rights:
Implementation in BYKERS.APP We have integrated your rights directly into the app:
Data export is provided in JSON format, a structured, commonly used, and machine-readable format in accordance with Art. 20 GDPR.
We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy. The new privacy policy will then apply to your next visit.
Source: Adapted from eRecht24 and GDPR templates